Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Autofailover for WAN links

We have 2 links between HQ and a remote site. The two links are terminated at HQ on 2 different routers each with a tunnel to the remote site. Then we have a HQ default gateway router which is connected to the 2 routers. The usual practice when any of links goes down is to log in to the HQ gateway router and add static route to the router hosting other link.

But now we want to use dynamic routing and allow the router to automatically failover to the 2nd link if the link in use goes down.

Since the tunnels for the 2 links are on different routers, how do i get the default gateway to notice when oone tunnel goes down? Is there a way i could move the tunnels to the central gateway router while the ethernet termination (the tunnel sources) remain on their different routers.

How else can i achieve this autofailover without altering the physical connection? Thanks...

New Member

Re: Autofailover for WAN links

if two HQ routers + gateway router are on same LAN just enable HSRP and enable tracking the lines connecting to the 2 routers . This will help to shift the load from one to another ...

can u post the diagram , its really difficult to understand the situation.


rate if helps

New Member

Re: Autofailover for WAN links

Hi ,

for the autofailover of the wan link, pls implement MHSRP. follow the following url, if any doubt reply back.


New Member

Re: Autofailover for WAN links

if you can go dynamic all the way between all the three routers, the two at the HQ and the remote site,i.e no static routes to any of the links, you will achieve your aim of automatic failover.

New Member

Re: Autofailover for WAN links

Simplest way is HSRP on the two tunnel termination routers. Obviously, this requires your tunnel endpoint and default gateway routers to share the same Ethernet segment. If your tunnel routers are connected to the default gateway via individual point-to-point links (/30 subnet on each link), then HSRP won't quite work. There are a few alternatives:

- GLBP (Global Load Balancing Protocol) - kinda like HSRP in a way.

- BGP - you can really use any dynamic routing protocol, but I prefer BGP because the granular control it'll give you over route selection etc.

With the BGP option, you can include your remote router into the BGP routing topology, and ensure BGP peering is established inside the VPN tunnel. That way, when the primary tunnel goes down, it'll tear down the primary BGP session as well, and BGP will reconverge to the second tunnel.

Just my 2cents...

CreatePlease to create content